Connecting SOAR apps
Apps are the integration points between Splunk SOAR and your other security technologies. Through apps, Splunk SOAR directs your other security tools to perform actions on your assets. The Splunk SOAR app model supports 350+ tools and 2,150+ actions, so you can connect and coordinate workflows across your team and tools.
Some of the most popular apps are:
- AWS EC2
- Cisco ISE
- Microsoft 365 Defender
- MS Graph for Office 365
- Virustotal v3
To search all available Splunkbase apps for SOAR, click here.
You can also develop your own custom SOAR apps!
You can also take the free Developing SOAR Applications course to plan, design, and debug basic applications for Splunk SOAR.
- Splunk Docs: Managing SOAR apps (Cloud version)
- Splunk Docs: Managing SOAR apps (On-premise version)
- Splunk Docs: Developing custom SOAR apps (Cloud version)
- Splunk Docs: Developing custom SOAR apps (On-premise version)